Red Hat Product Errata RHSA-2024:4618 - Security Advisory
Issued:
2024-07-18
Updated:
2024-07-18

RHSA-2024:4618 - Security Advisory

Synopsis

Important: libndp security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for libndp is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Libndp is a library (used by NetworkManager) that provides a wrapper for the IPv6 Neighbor Discovery Protocol. It also provides a tool named ndptool for sending and receiving NDP messages.

Security Fix(es):

  • libndp: buffer overflow in route information length field (CVE-2024-5564)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4 x86_64
  • Red Hat Enterprise Linux Server - AUS 8.4 x86_64
  • Red Hat Enterprise Linux Server - TUS 8.4 x86_64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.4 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.4 x86_64

Fixes

  • BZ - 2284122 - CVE-2024-5564 libndp: buffer overflow in route information length field

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4

SRPM
libndp-1.7-6.el8_4.src.rpm SHA-256: 72faccfcc57da3242bf822e356c5f8f7f88c1d869e5f669354ce55bb444d4aeb
x86_64
libndp-1.7-6.el8_4.i686.rpm SHA-256: e629e775ebb2dfa3c0c9d94236d1920e84dc798e59feb753b5eeb9900f533f57
libndp-1.7-6.el8_4.x86_64.rpm SHA-256: ed31bc6b3f9cae0a2893e0b4c214cd626e910fdb929635043d0341a0f1f734e2
libndp-debuginfo-1.7-6.el8_4.i686.rpm SHA-256: e2b18e964ef5c83f0c21a76958fbc62ef40be147f229fb7adbdf9d174599ae91
libndp-debuginfo-1.7-6.el8_4.x86_64.rpm SHA-256: 706c82faf27bf0c361b6fa35fde96f52cba2452ea4185e5c78e656ff36e7a506
libndp-debugsource-1.7-6.el8_4.i686.rpm SHA-256: b29294f1e09589da7b930283cd5aba141a68066c924f85abcad4123016a84537
libndp-debugsource-1.7-6.el8_4.x86_64.rpm SHA-256: cfbf27c02723f8eebbb46c24172b3e82dfa8bec4113d639b44b1814ca754a1a0

Red Hat Enterprise Linux Server - AUS 8.4

SRPM
libndp-1.7-6.el8_4.src.rpm SHA-256: 72faccfcc57da3242bf822e356c5f8f7f88c1d869e5f669354ce55bb444d4aeb
x86_64
libndp-1.7-6.el8_4.i686.rpm SHA-256: e629e775ebb2dfa3c0c9d94236d1920e84dc798e59feb753b5eeb9900f533f57
libndp-1.7-6.el8_4.x86_64.rpm SHA-256: ed31bc6b3f9cae0a2893e0b4c214cd626e910fdb929635043d0341a0f1f734e2
libndp-debuginfo-1.7-6.el8_4.i686.rpm SHA-256: e2b18e964ef5c83f0c21a76958fbc62ef40be147f229fb7adbdf9d174599ae91
libndp-debuginfo-1.7-6.el8_4.x86_64.rpm SHA-256: 706c82faf27bf0c361b6fa35fde96f52cba2452ea4185e5c78e656ff36e7a506
libndp-debugsource-1.7-6.el8_4.i686.rpm SHA-256: b29294f1e09589da7b930283cd5aba141a68066c924f85abcad4123016a84537
libndp-debugsource-1.7-6.el8_4.x86_64.rpm SHA-256: cfbf27c02723f8eebbb46c24172b3e82dfa8bec4113d639b44b1814ca754a1a0

Red Hat Enterprise Linux Server - TUS 8.4

SRPM
libndp-1.7-6.el8_4.src.rpm SHA-256: 72faccfcc57da3242bf822e356c5f8f7f88c1d869e5f669354ce55bb444d4aeb
x86_64
libndp-1.7-6.el8_4.i686.rpm SHA-256: e629e775ebb2dfa3c0c9d94236d1920e84dc798e59feb753b5eeb9900f533f57
libndp-1.7-6.el8_4.x86_64.rpm SHA-256: ed31bc6b3f9cae0a2893e0b4c214cd626e910fdb929635043d0341a0f1f734e2
libndp-debuginfo-1.7-6.el8_4.i686.rpm SHA-256: e2b18e964ef5c83f0c21a76958fbc62ef40be147f229fb7adbdf9d174599ae91
libndp-debuginfo-1.7-6.el8_4.x86_64.rpm SHA-256: 706c82faf27bf0c361b6fa35fde96f52cba2452ea4185e5c78e656ff36e7a506
libndp-debugsource-1.7-6.el8_4.i686.rpm SHA-256: b29294f1e09589da7b930283cd5aba141a68066c924f85abcad4123016a84537
libndp-debugsource-1.7-6.el8_4.x86_64.rpm SHA-256: cfbf27c02723f8eebbb46c24172b3e82dfa8bec4113d639b44b1814ca754a1a0

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.4

SRPM
libndp-1.7-6.el8_4.src.rpm SHA-256: 72faccfcc57da3242bf822e356c5f8f7f88c1d869e5f669354ce55bb444d4aeb
ppc64le
libndp-1.7-6.el8_4.ppc64le.rpm SHA-256: 4b7bbbde5d3f7cdc85197a1cb83926e0ed91c8388a7e8ede8818fc8eed42d2ad
libndp-debuginfo-1.7-6.el8_4.ppc64le.rpm SHA-256: 7093e4f09b05d5822aa70f53cb05d6692b37caf3b99e22b0f6058a3bb823b3cf
libndp-debugsource-1.7-6.el8_4.ppc64le.rpm SHA-256: 2ff533cc7fb26c03ef53909845511d7bba912e3a14fa63077c6d660d7336136d

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.4

SRPM
libndp-1.7-6.el8_4.src.rpm SHA-256: 72faccfcc57da3242bf822e356c5f8f7f88c1d869e5f669354ce55bb444d4aeb
x86_64
libndp-1.7-6.el8_4.i686.rpm SHA-256: e629e775ebb2dfa3c0c9d94236d1920e84dc798e59feb753b5eeb9900f533f57
libndp-1.7-6.el8_4.x86_64.rpm SHA-256: ed31bc6b3f9cae0a2893e0b4c214cd626e910fdb929635043d0341a0f1f734e2
libndp-debuginfo-1.7-6.el8_4.i686.rpm SHA-256: e2b18e964ef5c83f0c21a76958fbc62ef40be147f229fb7adbdf9d174599ae91
libndp-debuginfo-1.7-6.el8_4.x86_64.rpm SHA-256: 706c82faf27bf0c361b6fa35fde96f52cba2452ea4185e5c78e656ff36e7a506
libndp-debugsource-1.7-6.el8_4.i686.rpm SHA-256: b29294f1e09589da7b930283cd5aba141a68066c924f85abcad4123016a84537
libndp-debugsource-1.7-6.el8_4.x86_64.rpm SHA-256: cfbf27c02723f8eebbb46c24172b3e82dfa8bec4113d639b44b1814ca754a1a0

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.